【英文标准名称】:Informationtechnology-Securitytechniques-Guidelinesforinformationandcommunicationstechnologydisasterrecoveryservices
【原文标准名称】:信息技术.安全技术.信息和通信技术故障恢复服务用指南
【标准号】:BSISO/IEC24762-2008
【标准状态】:现行
【国别】:英国
【发布日期】:2008-02-29
【实施或试行日期】:2008-02-29
【发布单位】:英国标准学会(BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:通信技术;数据处理;数据保护;数据安全;定义;灾害;应急的;指导手册;信息交流;信息交换;信息安全;信息技术;安全工程;安全系统;服务设施
【英文主题词】:
【摘要】:1.1GeneralThisInternationalStandarddescribesthebasicpracticeswhichICTDRserviceproviders,bothin-houseandoutsourced,shouldconsider.Itcoverstherequirementsthatserviceprovidersshouldmeet,recognizingthatindividualorganizationsmayhaveadditionalrequirementsthatarespecifictothem(whichwouldhavetobeaddressedintheagreements/contractswithserviceproviders).Examplesofsuchorganizationrequirementsmayincludespecialencryptionsoftwareandsecuredoperationprocedures,equipment,knowledgeablepersonnelandapplicationdocumentation.Suchadditionalorganizationspecificrequirements,ifnecessary,aregenerallynegotiatedonacase-by-casebasisandarethesubjectofdetailedcontractnegotiationsbetweenorganizationsandtheirICTDRserviceprovidersandarenotwithinthescopeofthisInternationalStandard.1.2ExclusionsThisInternationalStandarddoesnot:a)provideanyguidanceonbusinesscontinuitymanagementasawholefororganizations;b)takeprecedenceoveranylawsandregulations,bothexistingandthoseinthefuture;c)haveanylegalpowerovertheServiceLevelAgreements(SLAs)includedinnegotiatedcontractsbetweenorganizationsandserviceproviders;d)addressrequirements,legalorotherwise,governingnormalbusinessoperationstobeadheredtobyserviceproviders.Examplesofsuchrequirementsincludedetailedregulationscoveringbuildingandfiresafety,occupationalhealthandsafety,copyrightregulationandprevailinghumanresourcepractices;e)provideanexhaustivelist,andthustechnicalsecuritycontrolsarenotcovered.ReadersshouldrefertoISO/IEC27001andISO/IEC27002,vendorliteratureandothertechnicalreferences,asnecessary.1.3AudienceThisInternationalStandardappliesto:a)allorganizationsrequiringtheICTDRservicesaspartoftheirbusiness(whetherin-houseand/oroutsourced);b)ICTDRserviceprovidersintheirprovisionofICTDRservices;c)communitiesoforganizationswithreciprocalormutualarrangements.
【中国标准分类号】:A90
【国际标准分类号】:35_040
【页数】:80P;A4
【正文语种】:英语